A threat actor has reported a breach at HSBC USA, claiming to hold a vast database with sensitive personal identifiable information (PII) and financial data. Specifics of the breach include names, addresses, Social Security numbers, and more, as the hacker posted evidence on a dark web forum. The attack was reported on October 28, 2025, amid HSBC’s challenges in the U.S. market, which could indicate a focus on business rather than retail clients due to the bank’s shift from mass retail banking.
Despite the bank’s assertion that no customer data is compromised, they are responding to the situation with enhanced security measures, including investigating third-party access points. Experts warn of significant risks such as identity theft and phishing attacks. Regulatory bodies are closely monitoring the incident, which may impact HSBC’s reputation and lead to client attrition. Customers are advised to strengthen their security by monitoring accounts closely and enabling additional authentication measures. The full implications of this breach remain uncertain, reflecting ongoing vulnerabilities in the financial sector.
👉 Pročitaj original: Cyber Security News
